Restore topic to revision:
You will be able to review the topic before saving it to a new revision
Copy text and form data to a new topic (no attachments will be copied though).
Name of copy: Allow non WikiWord name You will be able to review the copied topic before savingRename/move topic...
scans links in all public webs(recommended)Rename/move topic...
scans links in CBI_ComputerSecurity web only
Delete topic...
scans links in all public webs(recommended)Delete topic...
scans links in CBI_ComputerSecurity web only

TODO: according to John D. McLean? oral history, IBM RACF was going for a C2 cert and got C1. Research and confirm, perhaps gather data on the difficulties of achieving these certification levels. DEC also had a system they abandoned.

[X] Hide this message. Notice: On June 30, 2016, UMWiki service will be decommissioned. If you have information in UMWIki that needs to be preserved, you should make plans to move it before that date. Google Sites is anticipated to be the most popular and appropriate alternative for users because it offers a more modern and user-friendly interface and unlimited capacity. To learn more about the features of Google Sites and other alternatives, and to identify which one best fits your needs, see the Universitys Website Solution Selection Guide. If you have concerns or would like help regarding this change and your options, please contact Technology Help at help@umn.edu

DoD 5200.28 (TCSEC)

The Trusted Computer System Evaluation Criteria (TCSEC), known as the Orange Book, was the United States Department of Defense standard that set basic assessment requirements for security controls built into a computer system. First published in 1983, and updated in 1985, the TCSEC was the centerpiece of the Rainbow Series of DoD security publications.

TCSEC defined four levels of computer security: D, C, B, and A, where D is minimal protection, C is discretionary protection, B is mandatory protection, and A is verified protection, with C, B, and A containing additional subdivisions, called classes. Within each level, higher numbers indicate higher levels of security. For example B3 had greater security than B2, and B2 had greater security than B1.

Relatively few computer systems ever achieved the highest levels of security, which required a system to meet stringent function specifications as well as formal design and verification.

The TCSEC was canceled by the DoD in 2002 and was replaced by the international Common Criteria standard of 2005.